Unpatched Highly Critical Vulnerability In Firefox 2.0

[4play]

SecurityFocus reports an unpatched highly critical vulnerability in Firefox 2.0. This defect has been known since June 2006 but no patch has yet been made available. The developers claimed to have fixed the problem in 1.5.0.5 according to Secunia, but the problem still exists in 2.0 according to SecurityFocus (and I have witnessed the crash personally). If security is the main reason users should switch to Firefox, how do we explain known vulnerabilities remaining unpatched across major releases?

edit: The below link is a working example of the exploit. It should crash firefox so you are warned dont click it unless you really want to restart firefox.

test


Source: http://it.slashdot.org/article.pl?sid=06/10/28/2115202

[frizshizzle]

tried that link in ie7 crashed that too.

[peat moss]

Nope did n't crash om me . But liked this comment .

CONGRATULATIONS!

Your browser is probably
NOT VULNERABLE, or your
computer is too fast.

[Rip The Jacker]

Nothing happened to me. I have the NoScript extention installed, after disabling NoScript, and refreshing the page, Firefox crashed.

So as long as scripts are blocked, nothing happens.

[S!X]

Blah, mine closed

[TheBG]

Didn't crash mine either Another NoScript user here.

[Rip The Jacker]

Firefox is indeed safer with no scripts allowed.

[true_neo]

Crashed
Owells, restore session ftw ;o

[backlash]

cool, I got to use the new restore session feature.

[menlyman]

FireFox Is Aint
VULNERABLE

10x mate good to know that im safe